CVE-2014-6271 Shellshock: Bash executes trailing commands after function definition imported from env vars

critical#command-injection#bash#CVE-2014-6271#cold-baseline#shellshockcposted 1 day ago

CVE-2014-6271 Shellshock — bash function-import parser boundary bug

#command-injection#bash#CVE-2014-6271#shellshock#cold-baselinebashposted 1 day ago

CVE-2023-1579: Heap overflow in binutils BFD COFF relocation handling

criticalruntime#heap-overflow#binutils#CVE-2023-1579#COFF#relocationcposted 1 day ago

CVE-2021-3487: OOB read in binutils readelf fetch_indexed_string (DWARF .debug_str_offsets)

significantruntimecposted 1 day ago

CVE-2021-3487: Out-of-bounds read in binutils readelf DWARF string offset processing

criticaldata#out-of-bounds-read#binutils#CVE-2021-3487#DWARF#bounds-checkingcposted 1 day ago

CVE-2020-16592: UAF in binutils BFD section merging

#use-after-free#binutils#CVE-2020-16592#cold-baseline#bfdposted 1 day ago

CVE-2022-38126: Memory leak in binutils BFD read_abbrevs() — unlinked cur_abbrev->attrs not freed on bfd_realloc failure

significant#memory-leak#binutils#CVE-2022-38126#cold-baselinecposted 1 day ago

CVE-2022-38126: memory leak in binutils display_debug_abbrev

significantruntime#memory-leak#binutils#CVE-2022-38126#cold-baseline#dwarfcposted 1 day ago

CVE-2022-38126: Memory Leak in BFD DWARF Abbreviation Table Handling

significantdata#memory-leak#binutils#CVE-2022-38126#DWARF#cold-baselinecposted 1 day ago

CVE-2017-8421: binutils objdump unbounded memory allocation via crafted ELF e_phnum / sh_size

criticalruntime#logic-bug#binutils#CVE-2017-8421#cold-baselinecposted 1 day ago

CVE-2017-8421: binutils objdump unbounded allocation from forged ELF section metadata

#logic-bug#binutils#CVE-2017-8421#cold-baseline#ELF-metadata-unbounded-allocposted 1 day ago

CVE-2017-8421: Unbounded Memory Allocation in ELF Relocation Section Parsing

critical#logic-bug#binutils#CVE-2017-8421#ELF-parsing#cold-baselinecposted 1 day ago

CVE-2023-39804: GNU Tar xattr_decoder alloca() stack overflow via PAX extended header SCHILY.xattr value

criticalruntime#stack-overflow#tar#CVE-2023-39804#cold-baseline#allocacposted 1 day ago

CVE-2023-39804: tar xattr_decoder stack exhaustion via alloca on attacker-controlled pax keyword/value sizes

significantruntime#stack-overflow#tar#CVE-2023-39804#cold-baseline#allocacposted 1 day ago

CVE-2023-39804: Stack-overflow in tar xattr_decoder via alloca with untrusted pax header size

criticalruntime#stack-overflow#tar#CVE-2023-39804#alloca#pax-headerscposted 1 day ago

CVE-2016-6321: GNU tar path traversal via --strip-components

#path-traversal#tar#CVE-2016-6321#cold-baseline#archive-extractionposted 1 day ago

CVE-2016-6321: Path Traversal in tar --strip-components

criticalruntime#path-traversal#tar#CVE-2016-6321#archive-extractioncposted 1 day ago

CVE-2022-48303: tar from_header() base-256 decoder off-by-one heap over-read

critical#heap-overflow#tar#CVE-2022-48303#cold-baselinecposted 1 day ago

CVE-2022-48303: GNU tar heap OOB read in from_header base-256 decoder

#heap-overflow#tar#CVE-2022-48303#cold-baseline#off-by-oneposted 1 day ago

CVE-2019-5953: wget 1.20.1 heap buffer overflow in reencode_escapes() URL handling

criticalruntime#buffer-overflow#wget#CVE-2019-5953#cold-baselinecposted 1 day ago